About:
With this Gig you get an in-depth and extensive assessment (black-box penetration test) of the state of security of your web site or web application. The penetration test is customized towards the underlying technology of your web application as well as its internal business logic.You will receive a detailed report, including:
- technical details of potential vulnerabilities,
- non-technical explanations on their potential impact and
- hands-on mitigation strategies to efficiently solve the issues.
The security assessment will check for the top 10 most critical web application security risks according to the Open Web Application Security Project (OWASP). Specifically, your application will be tested (amongst others) against:
- injection flaws (SQL, CRLF, OS command, LDAP, expression language, XPath, etc.),
- broken authentication (URL rewriting, session fixation, weak authentication),
- sensitive data exposure (username exposure, backup file exposure, etc.),
- XML entity attacks (XXE),
- broken access control,
- cross-site scripting (reflected XSS, persistent XSS, DOM-based XSS) and
- weak server-side security.
For a rapid penetration test at a reduced rate, please see my other Gig (https://bit.ly/2IErsOH).
Reviews
: : : : :
No comments:
Post a Comment